In nft_chain_builtin_init(), The wrong macro was used for iterating over the built-in chains of a given table. That array's length is defined using NF_INET_NUMHOOKS, not NF_IP_NUMHOOKS. Though this change is rather cosmetic since both macros resolve into the same value.
Signed-off-by: Phil Sutter <[email protected]> --- Changes since v1: - Add spaces around operators. --- iptables/nft.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/iptables/nft.c b/iptables/nft.c index 05cd1564eaea1..f483eb6f04d37 100644 --- a/iptables/nft.c +++ b/iptables/nft.c @@ -675,7 +675,7 @@ static void nft_chain_builtin_init(struct nft_handle *h, struct nftnl_chain *c; /* Initialize built-in chains if they don't exist yet */ - for (i=0; i<NF_IP_NUMHOOKS && table->chains[i].name != NULL; i++) { + for (i=0; i < NF_INET_NUMHOOKS && table->chains[i].name != NULL; i++) { c = nft_chain_list_find(list, table->name, table->chains[i].name); -- 2.18.0 -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to [email protected] More majordomo info at http://vger.kernel.org/majordomo-info.html
